WordPress.org

Ready to get started?Download WordPress

Forums

Anti CSRF
CSRF vulnerability explanation (2 posts)

  1. John Blackbourn
    Member
    Posted 1 year ago #

    From your plugin description:

    Many WordPress plugin (about 70%) from this repository or elsewhere, even Premim plugins are vunerable to this flaw.

    This is quite a serious claim. Can you explain more about the vulnerability and how this plugin fixes it?

    http://wordpress.org/extend/plugins/baw-anti-csrf/

  2. Julio Potier
    Member
    Plugin Author

    Posted 1 year ago #

    Hello John
    I wrote a french post on my blog about CSRF and the plugin.

    http://www.boiteaweb.fr/la-faille-csrf-sous-wordpress-comment-sen-premunir-ma-solution-3556.html

    And for the "70%", i'm Web Security Consultant and i check almost all new plugins on repo and elsewhere, also i audit plugins installed by clients, and my rate is about 70% ...

    So i decided to try to fix this for everybody, one time.

    ;p

Topic Closed

This topic has been closed to new replies.

About this Plugin

About this Topic

Tags

No tags yet.